HackDig : Dig high-quality web security articles for hacker

Whilst sitting and working in the South African office I receive an email from my Swedish ISP. I quickly look at it and there is something that doesn’t add up. The email states that I need to pay my invoice, but I never receive electronic invoices from this company.
Like everyone else I receive a lot of spam and phishing emails, but this one is differ

On June 14, a Chinese gambling company was unlucky enough to be at the end of a complex multi-vector DDoS attack that blasted over 470 gigabits per second (Gbps) and over 110 million packets per second (Mpps) at its servers.The attack came after the company had already faced multiple 250+ Gbps attacks in the previous days. The good news is that this 470 Gbps

The UK Parliament's House of Commons Petitions Committee said it removed more than 77,000 fake signatures from a petition that asked the government to consider invalidating the first Brexit referendum and have a second one.The petition asked officials to implement a rule that, if the Remain or Leave vote tally is less than 60 percent based a turnout less

The US Internal Revenue Service (IRS) announced it is retiring the e-Filing PIN system following a new wave of cyber-attacks after crooks previously abused the same system last February.In a statement on the IRS website, the agency said it was planning to eliminate the e-File PIN system later this year, but decided to expedite its decision after they've

The US Department of Justice has updated charges against Xu Jiaqiang, 30, a former IBM employee arrested last year for attempting to sell the source code of one of the company's software applications.Xu worked for IBM from November 2010 to May 2014, where he occupied the position of system software developer and contributed to the company's General P

Earlier today, Adobe published the security advisory APSA16-03, which describes a critical vulnerability in Adobe Flash Player version 21.0.0.242 and earlier versions for Windows, Macintosh, Linux, and Chrome OS:
A few of months ago, we deployed a new set of technologies into our products designed to identify and block zero day attacks. These technologies a

Something is happening with TeamViewers servers at the moment, and all clues point to a massive breach that has led to many users going on Reddit and complaining about having their computers hacked, some even reporting seeing new purchases in their PayPal accounts.The problems started around noon today when users weren't able to connect to the TeamViewer

BeEF Wrapped Up and Delivered in 2016
In late February 2016, a University website in Iran stood out for thoroughly vetting its current and potential students and staff. The University’s web site served repackaged content from the Browser Exploitation Framework (BeEF) with embedded JavaScript content maintaining the potential to hook visitors’ web

Imperva's security team reports on a gigantic DDoS Layer 7 attack that broke previous records and funneled traffic of almost 8.7 Gbps towards its target.While 8.7 Gbps is hardly a number that impresses when it comes to classic network-level packet flood DDoS attacks, which can easily go over 100 Gbps and can sometimes peak at around 500 Gbps, Layer 7 DDo

Administrators at the Concordia University in Montreal, Canada, discovered hardware-based keyloggers on a few terminals at two of their libraries.The devices were found on express workstations located on LB2 in the Webster Library and on express workstations located in the Vanier Library on VL1.University staff discovered the incident when they moved the exp

Kaspersky Lab has joined industry alliance driven by Novetta to announce Operation Blockbuster. Just like the previous Operation SMN, this alliance brings together key players in the IT security industry, working together in an effort to disrupt and neutralize multiple cyberespionage campaigns that have been active for several years. Some of the targets of t

Background
Yesterday a blog post on “The Linux Mint Blog” caught our attention. Apparently criminals managed to compromise a vulnerable instance of WordPress which the project used to run their website. The attackers modified download links pointing to backdoored ISO files of Linux Mint 17.3 Cinnamon edition. This “should only impact people

Last night, the Linux Mint team announced that someone had hacked their servers and started pointing user downloads to malicious ISO images for the Linux Mint 17.3 Cinnamon edition. Our Linux editor already covered the initial details of the attack, which we recommend reading before going forward with this article.Since then, in the last ten hours, the Linux

French police have arrested Vincent L., 18, from Paris, for failing to cooperate with authorities in an investigation related to a series of fake bomb threats that took place in France, but also in other countries such as Australia, the UK, and the US, LeMonde reports.Vincent L. is the owner of the Darkness.su website, which provides anonymous XMPP services

FACC Operations GmbH, an Austrian company that produces various airplane parts for companies like Airbus and Boeing, has announced a cyber-incident during which cyber-fraudsters managed to steal around €50 million from their bank accounts.The company published a note about the incident on January 19, saying it was "a victim of a crime act using com